"A significant flaw in the PRNG implementation for the OpenSSL
FIPS Object Module v1.1.1 (certificate #733,
has been reported by Geoff Lowe of Secure Computing Corporation.
Due to a coding error in the FIPS self-test the auto-seeding never
"That means that the PRNG key and seed used correspond to the
last self-test. The FIPS PRNG gets additional seed data only from
date-time information, so the generated random data is far more
predictable than it should be, especially for the first few calls
Some of the products that appear on this site are from companies from which QuinStreet receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. QuinStreet does not include all companies or all types of products available in the marketplace.